Agreed. Pre-Vista Windows treats WLAN much as Ethernet from a protocol
perspective. That is, the WLAN NDIS miniport driver pretends to
support Ethernet (NdisMedium802_3) as its medium. See the description
on OID_GEN_MEDIA_SUPPORTED for details. Note that the same driver will
have NdisPhysicalMediumWirelessLan as its OID_GEN_PHYSICAL_MEDIUM.
WLAN miniports usually do not support promiscuous mode the way you
would expect (if they support it at all).
Tools like AiroPeek/OmniPeek etc. use special WLAN miniports that
support some kind of "raw" promiscuous mode. These drivers are AFAIK
not MS certified.
One solution would be to look out for a WLAN card that is supported
under Linux and run WireShark there. I have seen people running
Windows on their host and Linux as a virtual machine guest (VMware).
Then use a physical USB WLAN card, which can be accessed by Linux in
the VM directly, and then run WireShark.
Vista should be an option, too.
On Nov 20, 11:28 pm, "Gianluca Varenni"